Recent Advisories

Severity ID Title Vendor Product Date Type
HIGH 7.2 PACKETSTORM:214899

πŸ“„ MotionEye Frontend 0.43.1b4 Command Injection_PACKETSTORM:214899

Proof of concept exploit for a command injection vulnerability in MotionEye Frontend version 0.43.1b4...

N/A N/A PACKETSTORM
NONE PACKETSTORM:214921

πŸ“„ NanoMQ 0.24.6 API SQL Rule Engine Buffer Overflow_PACKETSTORM:214921

This script is a proof of concept used to test NanoMQ's API for improper input handling. It sends an intentionally long and malformed SQL alias thr...

N/A N/A PACKETSTORM
HIGH 8.8 PACKETSTORM:214917

πŸ“„ Nagios XI Monitoring Wizard Command Injection_PACKETSTORM:214917

Nagios XI is a widely used enterprise monitoring solution. A vulnerability exists within the Monitoring Wizard configuration page where the databas...

N/A N/A PACKETSTORM
MEDIUM 4.7 PACKETSTORM:214946

πŸ“„ Blesta 5.13.1 Cross Site Scripting_PACKETSTORM:214946

Blesta versions 3.2.0 through 5.13.1 suffer from a cross site scripting vulnerability. User input passed through the confirmurl GET parameter to th...

N/A N/A PACKETSTORM
NONE PACKETSTORM:214907

πŸ“„ mPDF 8.1.0 Server-Side Request Forgery / Local File Disclosure / DoS_PACKETSTORM:214907

mPDF version 8.1.0 is vulnerable to multiple security issues related to unsafe handling of external resources, file paths, and image content during...

N/A N/A PACKETSTORM
HIGH 7.5 PACKETSTORM:214948

πŸ“„ Blesta 5.13.1 2Checkout PHP Object Injection_PACKETSTORM:214948

Blesta versions 3.0.0 through 5.13.1 suffer from a 2Checkout PHP object injection vulnerability. The vulnerabilities exist because user input passe...

N/A N/A PACKETSTORM
NONE PACKETSTORM:214888

πŸ“„ Microsoft Windows 11 Build 10.0.27898.1000 Advanced Admin Protection Bypass_PACKETSTORM:214888

This enhanced proof of concept demonstrates an advanced method for bypassing Windows Administrator Protection by manipulating registry hives using ...

N/A N/A PACKETSTORM
MEDIUM 6.5 PACKETSTORM:214808

πŸ“„ Chromium Memory Corruption Trigger Simulation_PACKETSTORM:214808

This is a theoretical trigger simulation for a Chromium-class vulnerability associated with memory corruption scenarios commonly affecting the V8 J...

N/A N/A PACKETSTORM
HIGH 9 PACKETSTORM:214834

πŸ“„ LimeSurvey 5.2.4 Remote Code Execution_PACKETSTORM:214834

Proof of concept exploit for LimeSurvey version 5.2.4 that loads a malicious PHP plugin and executes a reverse shell...

N/A N/A PACKETSTORM
NONE PACKETSTORM:214818

πŸ“„ Flask-Uploads 0.2.1 Path Traversal / Arbitrary File Write_PACKETSTORM:214818

Flask-Uploads versions 0.2.1 and below Metasploit module that exploits a path traversal vulnerability to achieve an arbitrary file write...

N/A N/A PACKETSTORM